Thread: best practices to secure home's network
View Single Post
  #7 (permalink)  
Old 10-11-2005, 06:32 AM
Steven L Umbach
Guest
  
Posts: n/a
Default Re: best practices to secure home's network
The main thing you can do about the wireless connection is to make sure you
are using WPA and NOT WEP for encryption. Then use a strong preshared key
for WAP and wireless network cards of at least ten random characters
including uppercase, lowercase, numeric, and punctuation. Though WPA is
considered fairly secure I would still periodically change the PSK such as
maybe every 90 days or so. Make sure that you change the default password
for your WAP and I would make sure that remote management of it is disabled.
Other stuff like changing your ssid, stopping it from being broadcast, and
mac filtering can also be done but are of little value security wise. For
Windows XP I would also check the wireless properties and disable adhoc
wireless networking and configure your preferred networks to be your network
so that you don't inadvertently connect to another wireless network that
could be infected.


Beyond wireless use other best practices such as a firewall though your WAP
probably has one, use a quality malware detection and removal program that
is kept current with the latest definitions and that scans all emails, and
keep current with critical security updates at Windows Updates that scan be
done automatically. Scan your computers with Microsoft Baseline Security
Analyzer to check for missing updates and basic vulnerability check. Do not
use your administrator account when you do not need it - particularly for
web browsing. Make regular backups of important data to off computer media
such as cdrom or dvd. Use the principal of least privilege when configuring
share and ntfs permissions so that users do not have write or delete
permissions to a share or folder if they do not need it. Lastly make sure
you use strong passwords [eight characters and complex] as weak or no
passwords are the main cause of security problems of all sorts and use your
logon password for that only and never anything else. If for instance you
use it for your email account or web page access it may be trivial for
someone else that has access to your computer to recover it. If you want to
secure in more depth read the Threats and Countermeasures Guide from
Microsoft if it applies to your operating systems at the second link
below. --- Steve

http://www.microsoft.com/technet/sec.../mbsahome.mspx --- MBSA
http://www.microsoft.com/technet/sec...g/tcgch00.mspx
http://www.microsoft.com/smallbusine...t/default.mspx ---
Microsoft Small Business Security Guidance. Much of this can help in
securing a home network.

<strutsng@gmail.com> wrote in message
news:1128999001.987347.159320@o13g2000cwo.googlegr oups.com...
> My home has broadband internet connection. 2 computers are connected
> with wireless router, and I have multiple
> laptops are using Wi-Fi adapters that talk to wireless router. I guess
> it is a typical home's networking infrastructure.
>
> I want to know what's the best practices to secure the home's network?
>
> any good articles for references?
>
> please advise. thanks!!
>



Reply With Quote